NinjaDoc

Privacy Policy

Last updated: February 2026

NinjaDoc ("we," "us," or "our") operates the website ninjadoc.com and the NinjaDoc platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service. Please read this policy carefully. By accessing or using NinjaDoc, you agree to the terms outlined below.

1. Information We Collect

We collect information you provide directly and information generated through your use of the platform.

1.1 Account Information

When you register for a NinjaDoc account, we collect your name, email address, and hashed password. If you subscribe to a paid plan, we collect billing information through our payment processor (see Section 4).

1.2 Experience Data

We store the interactive experiences you create on the platform, including document content, configurations, form fields, and any media you upload.

1.3 Submission Data

When end users interact with your published experiences, we collect the data they submit through forms, including text responses, file uploads, and completion timestamps.

1.4 Usage Analytics and IP Hashes

We collect anonymized usage data including page views, feature usage patterns, session duration, and one-way hashed IP addresses. We do not store raw IP addresses. Hashed IPs are used solely for rate limiting and abuse prevention.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Providing the service: To operate, maintain, and deliver the features and functionality of NinjaDoc, including hosting your experiences and processing submissions.
  • Billing and account management: To process payments, manage subscriptions, and communicate account-related information.
  • Analytics and improvements: To understand how the platform is used, identify areas for improvement, and develop new features.
  • AI processing: When you use AI-powered features (AI generations, AI narratives), your content is sent to our AI provider for processing. We do not use your content to train AI models.
  • Security: To detect, prevent, and address technical issues, fraud, and abuse.
  • Communications: To send transactional emails such as account confirmations, billing receipts, and critical service updates. We do not send marketing emails without your explicit consent.

3. Data Sharing and Third Parties

We do not sell, rent, or trade your personal information. We share data only with the following third-party services as necessary to operate the platform:

  • Stripe: We use Stripe to process payments. When you subscribe to a paid plan, your payment information (credit card number, billing address) is sent directly to Stripe and is not stored on our servers. Stripe's privacy policy governs their handling of this data.
  • OpenRouter: We use OpenRouter to process AI generation and narrative requests. Content you submit for AI processing is sent to OpenRouter. We have data processing agreements in place to ensure your content is not used for model training.

We may also disclose information if required by law, regulation, or legal process, or if we believe disclosure is necessary to protect the rights, property, or safety of NinjaDoc, our users, or others.

4. Data Retention and Deletion

We retain your account data for as long as your account is active. Experience and submission data is retained for the duration of your account unless you explicitly delete it.

You may delete individual experiences and their associated submissions at any time from your dashboard. When you delete your account, we permanently remove all associated data within 30 days, including experiences, submissions, and personal information. Some anonymized, aggregated data may be retained for analytics purposes.

To request account deletion, contact us at support@ninjadoc.com or use the account deletion option in your account settings.

5. Cookies

NinjaDoc uses minimal cookies strictly necessary for the operation of the service. Specifically, we use a single session cookie managed by NextAuth.js to maintain your authenticated session. This cookie is:

  • HttpOnly and Secure
  • Used solely for authentication purposes
  • Not used for tracking or advertising
  • Automatically expires when your session ends or after 30 days of inactivity

We do not use third-party tracking cookies, advertising cookies, or analytics cookies.

6. Data Security

We implement industry-standard security measures to protect your data, including encryption in transit (TLS/HTTPS), encrypted database storage, secure password hashing, and regular security audits. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

7. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data.
  • Portability: Request a machine-readable export of your data.
  • Objection: Object to certain types of data processing.

To exercise any of these rights, please contact us at support@ninjadoc.com.

8. Children's Privacy

NinjaDoc is not intended for use by individuals under the age of 16. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 16, we will delete that information promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or by posting a prominent notice on our website. Your continued use of NinjaDoc after any changes constitutes your acceptance of the updated policy.

10. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

Email: support@ninjadoc.com

Build AI-powered forms, calculators, and assessments in minutes.

Get Started Free